I am back in the office this week so let’s get a round-up of the security advisories issued by The US government Cybersecurity and Infrastructure Security Agency (CISA), one of my trusted sources for information about cyber security vulnerabilities. Oracle Releases October 2023 Critical Patch Update Advisory | CISA Fortinet …
LinkedIn Phishing
LinkedIn is extremely popular among business professionals and is a perfectly acceptable social media platform to use and interact with, whilst you are at work. It is designed for just that. So make sure you and your team understand how the platform can easily be abused to steal your credentials. …
You cannot see a zero-point font…
The old trick of using a zero-point font in a document to conceal information you do not want to be readily detected by the reader, is being exploited again in a new way. This time it is being used to show Outlook emails as having been safely scanned when in …
This really is a Nigerian email scam…
I often refer to the typical “Nigerian Prince” email scam in my Cyber Awareness Training – not expecting them to work today. But there are always new angles! Nigerian man pleads guilty to attempted $6 million BEC email heist – BleepingComputer Next week’s Wednesday’s bit is going to be about …
Ransomware is back in the news
Ransomware is probably the most serious cyber security threat any organisation has to deal with. The threat actors are relentless with their efforts to infect both targeted victims and victims of opportunity. The usual ways in are a phishing email or infected webpage, with a convincing social engineering message. Here …